CNNVD-202601-4142 Information

CNNVD ID

CNNVD-202601-4142

Related CVE

CVE-2026-1363

• CNNVD Published: 2026-01-23

Description (Chinese)

JNC IAQS和JNC I6都是中国台湾铭祥（JNC）公司的产品。JNC IAQS是一款智能室内空气质量监测与管理系统。JNC I6是一款物联网网关记录器。 JNC IAQS和JNC I6 存在安全漏洞，该漏洞源于客户端强制执行服务器端安全，可能导致未经身份验证的远程攻击者获得管理员权限。

Description (English)

Both JNC IAQS and JNC I6 are products of Taiwan Taiwan (JNC). JNC IAQS is a smart indoor air quality monitoring and management system. JNC I6 is a web-connected gateway recorder. JNC IAQS and JNC I6 have a security loophole, which stems from the security of the client-end enforcement server, which may result in remote assailants without identification being granted administrator privileges.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

铭祥

Published

2026-01-23

Last Modified

2026-02-24

References

https://www.twcert.org.tw/en/cp-139-10653-117a1-2.html https://www.twcert.org.tw/tw/cp-132-10652-4cdca-1.html

Patch

https://www.jnc-tec.com.tw/zh-TW/product-IAQS